Attackers can exploit CVE-2020-1048 with a single PowerShell command: Add-PrinterPort -Name c:\windows\system32\ualapi.dll On an unpatched system, this will install a persistent backdoor, that won't go away *even after you patch*. See https://windows-internals.com/printdemon-cve-2020-1048/ … for more details.
-
-
Precisely.
-
Though perhaps to be more specific here, the updates are still published and freely downloadable: https://www.catalog.update.microsoft.com/Search.aspx?q=KB4556836 … are the May 2020 Monthly Quality Rollups for Windows 7. They just seem to be not installable on a stock Win7 system. Perhaps paying gets you that ability?
- 2 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.